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Prt>viding guar^nmas for security and prhscy paramot/nt to the success of 
SemanGc W&b Services, /n thte arM^, the sutnors describe OWL-S paiicy . 
annotations and extend ttie OWl-S Matchm&ker and OWt-S V/m/a/ M^cMnn 
to support the processing of those poitdes. 



r cb Services wni soon handle users' private information. Tlieyll rte^ to 
provicfe. privacy guarantees to. prevent this delicate information fn^m ending 
up 10 the wrong hands. More generally, Web Services will need to reason 
about their usere' polWes that specify wtio can access privacy Information and 
under what condih'ons, 

Ttiese requimments are even mora stringent for Semantte Web Services that 
exploit the Semantic Web to automate their discovOfy and Interaction because 
they must autonomously decide what information to exchange and how* 

In our previous work^ we proposed ontologies for modetini) the high-level 
security requtrements and capabilities of Web Services end clients.^ This 
modeling helps to match a client's request with appropriate services— those 
based on security criteria as well as functional descriptions. For example/ a 
Web Service couW state that it can perform Open PGP encryption and requires 
an invoker that can authenticate itsctf and communicate In XML. We added 
functionality to the DAML-S Matchmaicer^ (an earlter version of the OWL-S 
Matchmaker) that lets ft verity If a service's capabinties fulfill the (nvoker's 
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In this article, we propose a rruire fine-grain security markup of service 
parameters \n OWL-S. We extend our previous work with annotations about 
Mie security and privacy polteiGS of services. We exprciss theae annotations in 
Re), a logic-based language that lets you define rules ^nd constraints over 
<Iomalrt-«peclflc ontologies.' Our woric alms to pirovlde security and policy. . 
annotations for OWL-S service descriptions and entorccments by extending 
the OWL'S Matchmaker for policy matching and the OWL-S Virtual Machine 
(VM)* with policy efttofcemedt and security mechanisms. 
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Role of policies 

Policies specify who can use a service end tinker which condittons, how Information should 
be provrded to the sen/Ice^ and how the provided m^t>ftnation will be wsedw Policies should 
be part of Web Service representations— parttaufaHy those on the SemantJc web (see the 
"Related Work'' sidebar for more background lafqrrri^tfQn). 

In our work, a client-server model Involves a ctrent that w^nti^ to invoke £) W«b Servlcie. We 
view the use of policies as symmetrfC"- policies that constrain both the provider and 
requester. You can e^jsiiy extend tnis model to o service-service *rchitactural modal. 

Here, we oddre$s two kinds of policies: privse/ and authon^stian. privacy policies specify 
under what conditions you can exchange Irtfomnatlon and the legitJmato u&gs of that 
Information* For example, a privacy policy mj<)htsay that a prqvider could give a requester 
a key to access private Information Only If the key is encrypted during transmission. When a 
requester discovers the policy, rt should decide whether rt can satisfy this condition, Tbe 
requester nriight have rts own privacy policy that requires keeping certain fnformBtlon 
confidential, so it likewise cant share unencrypted private information. The requestor'*) 
privacy policy prevents It from Interacting with Web Services that don't perform the needed 
encryption. 

Privacy poHdes help specify data confidentiality during transmission as well as after receipt. 
Consider a service that says it won't distribute details it receives as input. A requester chat 
value.4 privacy mi^ht see tJi^s as an Important requirement. 

YOU can interpret a Web Service's privacy policies as an objigatioh and contract. For 
example, if after invocation, a service does provide a requester's details to a telemarketer^ 
the per?»on represented by the requester could take leqal action against the: service on the 
basis of the policy. As financial transactions become more common annong Web Services 
and as Web Services start dealing with confidential Information (stich names, addresses, 
soa"a) security numbers (SSNs), credit cards, and telephone numbers), more people will 
expect Che enforcement of privacy poJicies. 

Authorization policies consttafn the pro-vlder to accept requests fbr service only from 
certain clients. For example, a service's authorizaticn policy could state that a requester 
must act on behalf of a person who belongs to a certain organiiatronal group and can prove 
membership with a digital certificate. Simllariy^ the requester could limit invocation to 
selecbed providers. 



A rnotivatinfi example 
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C^n^iidar a scenario In which a sdenti^t Is looking ror en ondne ccmi>uting s^rvic^ for her 
experimental data. Her prh/acv policy requires lhal any persgn^l Inftirmatfcm provided to the 
s^rvlc^ (5ii<ih ^« namff or SSN) stay oonfWent^aK So, she^s only looking for Web Services 
that accept <artcryptcd dtrt» and that dont release personal information to other servlceB or 
agents. 

The $<iieritl$t flntfe a Web Service that can perform the necessary data computetions. The 
service's authorization poilcv ^ays that tt allows access only to members of certain, r^eietted 
orgdni^atbTis and that the scientist's registration mv&t be authenticated. 

In this arttcte. well approach the formatlzatlon and processing of these privacy and 
authentication poticies on two at»stra<^on levefs. On a more abstract level, we provide 
ontologies to annotate Weti Service input and output pararnetere with security 
characteristics that $tate wh^her these parameters are encrypted or digitally signed, and 
we FBly on Rel to formahstc the privacy and authorization policies. 

On a more concrete levels selecting Web Services that satisfy the requester's pollde& win be 
part of an extension of the OWL-S matchmaking process. FMrthermore, cryptographic 
mechanisms such as encrypting or signing me^sagefi are enforced via integration into the 
OWL-S VM, a generic processor fOr the DWL-S process model and Cool for automatic 
Invocation of OWL serviced. 
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